Hello
I followed a short time pfsense thinking to use it in our company situation.
A few questions before I implement and change our network.
We have 16 public IP
1 IP used for windows desktop (10) users .
14 user for small network with some pop/http/smtp/radius etc... servers
I like to setup pfsense with 3 nics
WAN for the outsite,
LAN with 1 IP desktop users.
OPT1 with the other IP's for bridging to the servers.
My wishes are.
On LAN :
1) Traffic shaping for desktop users limit the upload/download to have
allways B/W for the servers.
2) Block some websites (my boss wishlist :-( ) create a blacklist so
desktop users can't visit some websites.
3) VPN from WAN to our companys windows server within de desktops network.
4) Terminal server from WAN trough VPN.
5) Static IP's and DHCP needed.
On OPT1 :
1) Setup a bridge between OPT1 and WAN.
2) Trafic shapping to control B/W.
3) IP blocking for some IP's and/or ports.
My most concern is my(boss) wish number 2 on LAN.
With firewall blocking website's isn't a good option I guess, think that
this list will be huge after a while.
Maybe drop some IP's to local/127.0.0.1 in the /etc/host and Upload the
host file on change !
Better idea's would be very welcome.
Concern 2 and 3 on OPT1 because it's a bridge can I shape traffic and
block (WAN)IP's for each individual IP .
Sorry for the lots of questions.
Thanks for reading and even more thanks if you can help me.
Sjaak
